Vulnerability Details CVE-2022-37056
D-Link GO-RT-AC750 GORTAC750_revA_v101b03 and GO-RT-AC750_revB_FWv200b02 is vulnerable to Command Injection via /cgibin, hnap_main,
Exploit prediction scoring system (EPSS) score
EPSS Score 0.437
EPSS Ranking 97.4%
CVSS Severity
CVSS v3 Score 9.8
References
- https://drive.google.com/file/d/127tqMUvAxQ4OlycoSNtcP0x2282Y75GJ/view?usp=sharing
- https://supportannouncement.us.dlink.com/security/publication.aspx?name=SAP10308
- https://www.dlink.com/en/security-bulletin/
- https://drive.google.com/file/d/127tqMUvAxQ4OlycoSNtcP0x2282Y75GJ/view?usp=sharing
- https://www.dlink.com/en/security-bulletin/
Products affected by CVE-2022-37056
-
cpe:2.3:h:dlink:go-rt-ac750:revision_a
-
cpe:2.3:h:dlink:go-rt-ac750:revision_b
-
cpe:2.3:o:dlink:go-rt-ac750_firmware:1.01b03
-
cpe:2.3:o:dlink:go-rt-ac750_firmware:2.00b02